📘
Both GoPay QRIS and ShopeePay QRIS are available on SNAP-based flow.

In QRIS flow, merchant will receive QRIS code which can be paid by users. Users can scan the QRIS code using e-wallet app that already is QRIS compatible, such as GoPay, ShopeePay, etc.

This section will explain how merchants can initiate GoPay QRIS transactions using SNAP-based CoreAPI specification.

Creating GoPay/ShopeePay QRIS transaction

Path	/{version}/qr/qr-mpm-generate
HTTP Method	POST
Version	v1.0
SNAP Service Code	47

Request Header

Field Name	Field Type	Mandatory	Field Description
Content-type	String	M	Media type of the resource, i.e. application/json
X-TIMESTAMP	String	M	Client’s current local time in ISO-8601 format
X-SIGNATURE	String	M	Created using symmetric signature HMAC_SHA512 algorithm
Authorization	String	M	Represents access_token of a request; string starts with keyword “Bearer ” followed by access_token. Can get this token from Access Token B2B response.
X-PARTNER-ID	String	M	Unique identifier for caller (client_id)
X-EXTERNAL-ID	String	M	Alphanumeric string. We suggest merchant to use UUID format. The value should be unique. In case of timeout, merchant can do: 1. Use this value in get status API to get status transaction The value should also be the same as request_body.partnerReferenceNo
CHANNEL-ID	String	M	Mandatory field from Bank Indonesia that can take any value with correct format 5 digits numeric string

Content-type:application/json
X-TIMESTAMP:2024-03-19T14:30:00+07:00
X-SIGNATURE:da1fa417c72d6b91c257e01e54fac824
Authorization:Bearer gp9HjjEj813Y9JGoqwOeOPWbnt4CupvIJbU1Mmu4a11MNDZ7Sg5u9a
X-PARTNER-ID:BMRI
X-EXTERNAL-ID:12345678901234567890
CHANNEL-ID:12345

Request Body

Field Name	Field Type	Mandatory	Field Description
partnerReferenceNo	String(36)	O	Alphanumeric string. Preferably UUID. Reference number that should be unique across 3 months. This value should be filled with the same value as X-EXTERNAL-ID Note: Allowed Symbols are dash(-), underscore(_), tilde (~), and dot (.). Any request containing unauthorized symbols will be automatically declined.
amount	Object	O	Amount object
amount.value	String(16,2)	M	Transaction amount
amount.currency	String(3)	M	Transaction currency
merchantId	String(64)	O	Merchant identifier that is unique per each merchant
validityPeriod	String(25)	O	The time when the QRIS will automatically expire. The time when the payment will be automatically expired. The format is defined by ISO 8601. (Maximum value : 180 days from trx time, Minimum value : 20 second, default value : 15 min)
additionalInfo	Object	O	Additional information
additionalInfo.acquirer	String	O	Acquirer name, possible value for now: GOPAY, AIRPAY SHOPEE. If not given, default value is GOPAY

{
  "partnerReferenceNo": "2020102900000000000001",
  "amount": {
    "value": "12345678.00",
    "currency": "IDR"
  },
  "merchantId": "00007100010926",
  "validityPeriod": "2009-07-03T12:08:56-07:00",
  "additionalInfo": {
    "acquirer": "gopay"
  }
}

Response Header

Field Name	Field Type	Mandatory	Field Description
Content-type	String	M	Media type of the resource, i.e. application/json
X-TIMESTAMP	String	M	Client’s current local time in ISO-8601 format

Content-type:application/json
X-TIMESTAMP:2024-03-19T14:30:00+07:00

Response Body

Field Name	Field Type	Mandatory	Field Description
responseCode	String (7)	M	Response Code (HTTP status code + service code + case code)
responseMessage	String (150)	M	Description of charge result response.
referenceNo	String (64)	O	Transaction identifier on service provider system.
partnerReferenceNo	String (36)	O	partnerReferenceNo from the request body
qrContent	String(512)	M	QR String MPM.
qrUrl	String(256)	M	QR URL for download QR Image
qrImage	String	M	base64 from image QRIS. Max length is unlimited.
additionalInfo	Object	O	Additional information
additionalInfo.acquirer	Object	O	Acquirer chosen from request

{
  "responseCode": "2004700",
  "responseMessage": "Request has been processed successfully",
  "referenceNo": "2020102977770000000009",
  "partnerReferenceNo": "2020102900000000000001",
  "qrContent": "xxxxxxxxxxxxxxxx",
  "qrUrl": "https: //qrurl?img=12345",
  "qrImage": "TWFuIGlzIGRpc3Rpbmd1aXNoZWQsIG5vdCBvbmx5IGJ5IGhpcyByZWFzb24sIGJ1dCAuLi4=",
  "additionalInfo": {
    "acquirer": "gopay"
  }
}

List of Response code

Response Code	HTTP Status	Description
2004700	200	Successful
2024700	202	Transaction still on process
4004700	400	General request failed error, including message parsing failed.
4004701	400	Invalid format
4004702	400	Missing or invalid format on mandatory field
4014700	401	General unauthorized error (No Interface Def, API is Invalid, Oauth Failed, Verify Client Secret Fail, Client Forbidden Access API, Unknown Client, Key not Found)
4014701	401	Token found in request is invalid (Access Token Not Exist, Access Token Expiry)
4014703	401	Token not found in the system. This occurs on any API that requires token as input parameter
4034702	403	Exceeds Transaction Amount Limit
4034703	403	Suspected Fraud
4034715	403	Transaction Not Permitted
4044708	404	Merchant does not exist or status abnormal
4044713	404	Invalid format amount
4094700	409	Cannot use same X-EXTERNAL-ID
5004701	500	Unknown Internal Server Failure, Please retry the process again
5004702	500	Backend system failure, etc
5044700	504	Timeout from the issuer

Additional APIs